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Response and Amendment dated 01/13/2006 Application No. 10/068,444 

Response to Office Action dated 10/14/2005 

This listing of claims will replace all prior versions, and listings, or claims in the 
application: 
Listing of Claims 

1 . (Currently Amended) A distributed security system comprising: 

a security policy written in a security protocol independent security policy 
language; and 

a least one computer device that processes data in accordance with the security 

policy. 

2. (Original) The distributed security system of claim 1 , wherein: 
the security policy identifies components of the security system, 

3 . (Original) The distributed security system of claim 1 9 wherein : 
the security policy identifies access rights of the security system. 

4. (Original) The distributed security system of claim 1 , wherein: 

the security policy language comprises the extensible markup language. 

5. (Original) The distributed security system of claim 1, wherein: 
the security policy is configurable. 

6. (Original) The distributed security system of claim 1 , wherein: 

the security policy language comprises at least some logic-based components. 

7. (Original) The distributed security system of claim 1 , wherein: 

the security policy language comprises at least some rule-based components. 

8. (Original) The distributed security system of claim 1, wherein: 
the security policy language comprises procedural components, 
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9. (Original) The distributed security system of claim 1, wherein the com] niter 
device is configured with computer-executable instructions to: 

receive from a first entity a message formatted in a first protocol; and 
transmit to a second entity the message formatted in a second protocol that is 
different from the first protocol. 

10. (Original) The distributed security system of claim 9, wherein the computer 
device is configured with computer-executable instructions to: 

receive from a first entity a message transported with a first transport; and 
transmit to the second entity the message using a second transport that is diffident 
from the first transport 

11. (Original) The distributed security system of claim 1, wherein the security policy 
is implemented with at least one application programming interface. 

12. (Original) The distributed security system of claim 1, wherein the security 
language includes programming language constructs. 

13. (Original) The distributed security system of claim 1, wherein the security policy 
includes an identity service. 

14. (Original) The distributed security system of claim 1, wherein the security policy 
includes an admission service. 

15. (Original) The distributed security system of claim 1, wherein the security policy 
includes a permission service. 

16. (Original) The distributed security system of claim 1, wherein the security policy 
includes a revocation service. 
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17. (Original) The distributed security system of claim 1, wherein the security policy 
includes a mapping of entities to rights. 

1 8. (Original) The distributed security system of claim 17, wherein the security policy 
further includes a mapping of entities to capabilities. 

19. (Original) The distributed security system of claim 1, wherein the security policy 
is configured to invoke external computer-readable instructions. 

20. (Original) The distributed security system of claim 19, wherein the external 
computer-readable instructions comprise native processor code. 

21. (Original) The distributed security system of claim 19, wherein the external 
computer-readable instructions comprise Java code. 

22. (Withdrawn) A method of delegating security credentials, the method including: 
providing to a second party a first license issued to a first party; and 

providing to the second party a second license that allows the second party to use 
the first license. 

23. (Withdrawn) The method of claim 22, wherein the second license is issued by the 
first party. 

24. (Withdrawn) The method of claim 22, wherein the second license includes 
conditions on the use of the first license. 

25. (Withdrawn) A method of transmitting a message between a first party find a 
second party, the method including: 

receiving from the first party a message addressed to the second party, wherein the 
message is transported with a first transport and formatted in accordance with a first 
protocol; 
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detennining a transport and protocol required by the second party from a security 
policy; and 

transmitting the message to the second party using the transport and proiocol 
required by the second party. 

26. (Withdrawn) A method of transmitting a secure message between a first part) and 
a second party, the method including: 

formatting the message with a markup language; and 
inserting a security credential into a header of the message, 

27. (Withdrawn) The method of claim 26, wherein the markup language comprises 
the extensible markup language. 

28. (Withdrawn) The method of claim 26, wherein the security credential comprises a 
license. 

29. (Withdrawn) The method of claim 26, wherein the security credential compri.ses a 

key. 

30. (Withdrawn) A method of defining a security arrangement between entities of a 
distributed computing system, the method including: 

identifying a portion of a first security policy written in a first security policy 
language; 

identifying a portion of a second security policy written in a second security 
policy language; and 

processing data in accordance with the portion of the first security policy and the 
portion of the second security policy. 
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31. (Withdrawn) The method of claim 30, further including exchanging messages 
between the entities to negotiate on the identification of the portion of the first security policy 
and the portion of the second security policy. 

32. (Withdrawn) The method of claim 30, wherein the first security policy language 
is the same as the second security policy language. 
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